Merge pull request 'Removed login proto handling' (#81 ) from payments into master

Reviewed-on: #81
Removed login proto handling
2026-06-05 08:56:17 +02:00 · 2026-06-05 08:55:31 +02:00 · 2026-06-05 08:18:12 +02:00 · 2026-06-05 08:17:32 +02:00 · 2026-06-05 08:15:50 +02:00 · 2026-06-05 08:15:13 +02:00
3 changed files with 34 additions and 2 deletions
@@ -4,7 +4,11 @@ public sealed class AuthentikSettings
 {
    public string? Authority { get; set; }

-    public string? IntrospectionUrl { get; set; }
+    public string? IntrospectionEndpoint { get; set; }
+
+    public string? MetadataEndpoint { get; set; }
+
+    public string? RevokationEndpoint { get; set; }

    public string? ClientId { get; set; }

@@ -27,9 +27,11 @@ public static class Api
        .AddOpenIdConnect(OpenIdConnectDefaults.AuthenticationScheme, options =>
        {
            options.Authority = authOptions.Authority;
+            options.MetadataAddress = authOptions.MetadataEndpoint;

            options.ClientId = authOptions.ClientId;
            options.ClientSecret = authOptions.ClientSecret;
+            options.SignedOutCallbackPath = "/signout-callback-oidc";

            options.ResponseType = "code";
            options.SaveTokens = true;
@@ -57,7 +59,7 @@ public static class Api
            .AddOAuth2Introspection(OAuth2IntrospectionDefaults.AuthenticationScheme, options =>
            {
                options.Authority = authOptions.Authority;
-                options.IntrospectionEndpoint = authOptions.IntrospectionUrl;
+                options.IntrospectionEndpoint = authOptions.IntrospectionEndpoint;
                options.ClientId = authOptions.ClientId;
                options.ClientSecret = authOptions.ClientSecret;

@@ -79,6 +81,31 @@ public static class Api
        return services;
    }

+    public static WebApplication AddSecurityEndpoints(this WebApplication app)
+    {
+        app.MapGet("/login", async (HttpContext context, string redirectUri = "/") =>
+        {
+            await context.ChallengeAsync(OpenIdConnectDefaults.AuthenticationScheme, new AuthenticationProperties
+            {
+                RedirectUri = redirectUri,                
+            });
+        });
+
+        app.MapGet("/logout", async (HttpContext context, IHttpClientFactory httpClientFactory, IOptions<AuthentikSettings> settings) =>
+        {
+            await context.SignOutAsync(CookieAuthenticationDefaults.AuthenticationScheme);
+
+            string currentBaseUrl = $"https://{context.Request.Host}{context.Request.PathBase}/";
+
+            await context.SignOutAsync(OpenIdConnectDefaults.AuthenticationScheme, new AuthenticationProperties
+            {
+                RedirectUri = currentBaseUrl
+            });
+        });
+
+        return app;
+    }
+
    public static IServiceCollection AddApiServices(this IServiceCollection services, IConfiguration configuration)
    {
        services.AddHttpClient();
@@ -38,6 +38,7 @@
    <PackageReference Include="Microsoft.AspNetCore.Authentication.Certificate" Version="10.0.8" />
    <PackageReference Include="Microsoft.AspNetCore.Authentication.JwtBearer" Version="10.0.8" />

+    <Using Include="Microsoft.AspNetCore.Authentication"/>
    <Using Include="Microsoft.AspNetCore.Authentication.OpenIdConnect"/>
    <Using Include="Microsoft.AspNetCore.Authentication.Cookies"/>
    <Using Include="IdentityModel.AspNetCore.OAuth2Introspection"/>
Author	SHA1	Message	Date
khwezi	de955a96a8	Merge pull request 'Removed login proto handling' (#81 ) from payments into master Reviewed-on: #81	2026-06-05 08:56:17 +02:00
Khwezi Mngoma	cdf5cfb5cd	Removed login proto handling continuous-integration/drone/pr Build is passing Details	2026-06-05 08:55:31 +02:00
khwezi	c4d3bb4cdf	Merge pull request 'Simplified login process' (#80 ) from payments into master Reviewed-on: #80	2026-06-05 08:18:12 +02:00
Khwezi Mngoma	65f102f18a	Simplified login process continuous-integration/drone/pr Build is passing Details	2026-06-05 08:17:32 +02:00
khwezi	cdc80db214	Merge pull request 'Refactored logout endpoint' (#79 ) from payments into master Reviewed-on: #79	2026-06-05 08:15:50 +02:00
Khwezi Mngoma	4576b5aa2b	Refactored logout endpoint continuous-integration/drone/pr Build is passing Details	2026-06-05 08:15:13 +02:00
khwezi	3847927ace	Merge pull request 'Added port stripping' (#78 ) from payments into master Reviewed-on: #78	2026-06-05 07:37:16 +02:00
Khwezi Mngoma	d38d1dd059	Added port stripping continuous-integration/drone/pr Build is passing Details	2026-06-05 07:36:41 +02:00
khwezi	c27aba1954	Merge pull request 'Forcing login https proto on redirect' (#77 ) from payments into master Reviewed-on: #77	2026-06-05 06:40:33 +02:00
Khwezi Mngoma	e646d16053	Forcing login https proto on redirect continuous-integration/drone/pr Build is passing Details	2026-06-05 06:39:47 +02:00
khwezi	1c946dab26	Merge pull request 'Refactored security components' (#76 ) from payments into master Reviewed-on: #76	2026-06-05 05:44:47 +02:00
Khwezi Mngoma	20c3ad9569	Refactored security components continuous-integration/drone/pr Build is passing Details	2026-06-05 05:43:56 +02:00
khwezi	9977cf27b9	Merge pull request 'Added a redirect packet attachment to UI signout process' (#75 ) from payments into master Reviewed-on: #75	2026-06-04 16:03:06 +02:00
Khwezi Mngoma	cf7eed0603	Added a redirect packet attachment to UI signout process continuous-integration/drone/pr Build is passing Details	2026-06-04 16:02:29 +02:00
khwezi	8e9ac1e1ad	Merge pull request 'Added signout functionality for user authentik link' (#74 ) from payments into master Reviewed-on: #74	2026-06-04 14:40:00 +02:00
Khwezi Mngoma	fa79bd8021	Added signout functionality for user authentik link continuous-integration/drone/pr Build is passing Details	2026-06-04 14:39:14 +02:00